Web Analytics

venkat

  • SPLUNK ADMIN/ DEVELOPER
  • May 29, 2019
Telecommute Accounting

Personal Summary

* 6 Years' experience in Information Technology Industry.
* 4+ Years proficiency working with Splunk Architecture & Splunk Administrator and Configuration Management across various OS.
* Experience in gathering business requirements, definition and design of the data sourcing and data flows, data quality analysis, working in conjunction with the data warehouse architect on the development of Business Intelligence (BI) Models.
* Interacting with colleagues and collect requirements and onboard new data sources into Splunk.
* Architecture various components within Splunk (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder, Parsing, Indexing, Searching concepts, Hot, Warm, Cold, Frozen bucketing, License model.
* Experience in Installation, Configuration, Migration and Administered Splunk Search Head, Indexers, Cluster Master, Deployment Server, License Master, Heavy Forwarders and Universal Forwarder on Linux and Windows operating systems.
* Responsible for Hardware sizing and capacity planning and Monitoring and maintenance of all components of Splunk platform.
* Experienced in optimizing the Splunk Forwarder management architecture through a centralized server to manage the configurations.
* Responsible to create index with appropriate retention and retirement policies by managing the bucket policies.
* Responsible to implement Splunk Heavy forwarder component to perform intermediate routing, filtering, masking and overriding before the indexing.
* Experienced in designing and implementing the architecture with Indexer clustering to maintain data availability and disaster recovery.
* Scheduled Splunk based Reports and Alerts to monitor the system health performance and breaches.
* Experience in maintained Splunk based native Role and User creation.
* Configured Clusters, Server groups and Cloning for improved availability and failover capacity.
* Experience in standardizing Splunk forwarder deployment, configuration and maintenance across UNIX and Windows platforms.
* Integrate Splunk with LDAP and SAML and create role based groups and access
* Experience in Shell scripting and extensively used Regular expressions in search string and data anonymization.
* Understanding of Network Firewalls, Load-balancers, LDAP and complex network design.
* Experience with Splunk Searching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering and Forwarder Management.
* Excellent skills on troubleshooting and problem determination of HTTP/System/ Network related problems including monitoring, capacity planning and maintenance by providing 24X7 support on call for all mission critical applications.
* Strong background in a disciplined software development life cycle (SDLC).
* Experience working in different environments and with the process flows in AGILE as well as Waterfall methodologies.
* Monitor the applications and server infrastructure for optimization, performance and Utilization metrics.
* Highly Re-locatable and Result - Oriented. Highly effective interpersonal skills and ability to interact with end users. Managed and mentored 10+ teams technically to deliver solutions.

TECHNICAL TOOLS:

* Splunk: Splunk 5.x and Splunk 6.x, Splunk Enterprise, Splunk on Splunk, Splunk DB Connect, Splunk IT Service Intelligence, Splunk Web Framework, Splunk Machine Learning Tool kit, Splunk Hunk.

* Operating Systems: Windows, Unix/Linux.
* Data Analysis: Requirement Analysis, Business Analysis, detail design.
* Web technologies: HTML, CSS, JavaScript, XML, Advanced XML.
* Concepts: SIEM, SDLC, SSAE, Object Oriented Analysis and Design.
* Programming Languages: C, Python, UNIX shell scripts.
* Database: Oracle, MySQL, SQL queries, SQL Procedures.
* Tools: Microsoft Word, Microsoft PowerPoint, Microsoft Excel, Microsoft outlook, Microsoft Project, Wireshark.

Work Experience

SPLUNK ADMIN/ DEVELOPER
Apr 2018 - Nike

* Gathered and understand the client requirements to onboard new data sources into Splunk.
* Architecture various components within Splunk of 6.x, 7.x product (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder, Parsing, Indexing, Searching concepts, Hot, Warm, Cold, Frozen bucketing, License model.
* Validate the new data sources in local environment and created props.conf to avoid formatting issues.
* Configuring Splunk DB Connect 2.0 in search head cluster environment of Oracle and MySQL and managed Splunk DB connect Identities, Database Connections, Database Inputs, Outputs.
* Worked on 18Tb licensed environment with clustered indexers and search heads.
* Monitored license usage on daily basis and generate a license.
* Hands on development knowledge in creating Splunk dashboards, reports, visualizations and search capabilities using complex Splunk queries.
* Installation of Splunk forwarders agent across various application environments to collect data into Splunk environment.
* Worked on cleaning up bad search queries (missing metadata), Dashboards, Alerts, Reports which are Inactive and long running searches to improve performance.
* Experience in developing secure, reliable python applications on the AWS cloud.
* Providing error monitoring and root cause analysis using Splunk.
* Troubleshooting and configuration changes to resolve Splunk integration issues.
* Parsing, Indexing, Searching concepts Hot, Warm, Cold, Frozen bucketing.
* Field Extraction, Using Ifx, Rex Command and Regex in configuration files.
* Various types of charts Alert settings Knowledge of app creation, user and role access permissions.
* Creating and managing app, Create user, role, Permissions to knowledge objects.
* Dashboards were created to monitor the traffic volume across, response times, Errors and warnings.
* Use techniques to optimize searches for better performance, Search time vs Index time field extraction and understanding of configuration files, precedence and working.

SPLUNK ADMIN/ DEVELOPER
Dec 2016 - Feb 2018 Disney

* Gathered and understand the Client requirements and onboard new data sources into Splunk.
* Experience in Installation, Configuration, Migration and Administered Splunk Search Head, Indexers, Heavy Forwarders, Deployment Server, Cluster Master, Deployment Server, License Master and Universal Forwarder on Linux and Windows operating systems.
* Worked on 10Tb licensed environment with clustered indexers and search heads.
* Expertise with light, universal and heavy forwarders across different platforms
* Integrate Splunk with LDAP and SAML and create role based groups and access
* Created and Managed Splunk DB connect Identities, Database Connections, Database Inputs, Outputs, lookups, access controls.
* Involved in standardizing Splunk forwarder deployment, configuration and maintenance across UNIX and Windows platforms.
* Good Understanding of configuration files, precedence and daily work exposure to Props. Conf, Transforms. Conf, Inputs. Conf, Outputs. Conf and Setting up a forwarder information based on requirement.
* Maintained Splunk Environment with multiple indexers; managed and configured settings
* Improved search performance by configuring to search heads for all Indexes in production
* Responsible for setting up alerts and monitoring from the Machine generated live data.
* Created custom Splunk index using external volumes.
* Configured Clusters, Server groups and Cloning for improved availability and failover capacity.
* Developed, evaluated and documented specific metrics for management purpose.
* Provide regular support guidance to Splunk project teams on complex solution and issue resolution.
* Designed configurations to filter the appropriate data using whitelist filters as well as to discard the unwanted historical data using ignore filters.
* Deployed a central architecture to manage the forwarders using Deployment Server.
* Experience with Splunk Searching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering and Forwarder Management.
* Well versed in both remote and on-site user Splunk Support.
* Efficiently handled Work Load Management for load balancing and failover, improving performance, reliability and scalability.
* Building Searches and visualize them using dashboarding capabilities of Splunk as per business requirements.
* Involved in writing complex Interactive Field Extractor (IFX), rex and Multikv command to extracts the fields from the log files.
* Created reports, Dashboards, scheduled alerts and searches.
* Responsible for administering, maintaining and configuring a 24 x 7 highly available, Splunk apps for production portal environment.
* Experienced in creating and running Cron Jobs for scheduled tasks.
* Involved in handling various Incident and request related to the application.
* Developed shell scripts to handle everyday System Administration tasks such as backup procedure, system cleanup, everyday system tasks, log rotation etc.

Environment: Splunk Enterprise Server 6.x, Splunk Forwarder 6.x, Shell Script, RedHat Linux, Amazon Web Services (AWS), Windows 2008 R2.

SPLUNK ADMINISTRATOR
Jan 2016 - Sep 2016 Hasting Mutual, Hasting

MI

* Gathered and understand the Client requirements and onboard new data sources into Splunk.
* Extensive experience in Installation, Configuration, and Migration, Trouble-Shooting and Maintenance of Splunk, Apache Web Server on different UNIX flavors like Linux.
* Experience in understanding of 6.x product, distributed splunk architecture and components including installation of Search Heads, Indexers, Forwarders, Deployment Server, License Model and Heavy/Universal Forwarder.
* Proficient in Parsing, Indexing, Searching Concepts like Hot, Warm, Cold, Frozen bucketing.
* Setup Splunk Forwarders for new application levels brought into environment.
* Extensive experience in deploying, configuring and administering Splunk clusters.
* Helping application teams in on-boarding Splunk and creating dashboards, alerts, reports etc.
* Develop custom app configurations (deployment-apps) within SPLUNK to parse, index multiple types of log format across all application environments.
* System Administration familiar with Windows Servers, Red Hat Linux Enterprise Servers.
* Experience in Shell scripting and extensively used Regular expressions in search string and data anonymization.
* Understanding of Network Firewalls, Load-balancers, LDAP and complex network design.
* Experience in Optimized search queries using summary indexing.
* Excellent skills on troubleshooting and problem determination of HTTP/System/ Network related problems including monitoring, capacity planning and maintenance by providing 24X7 support on call for all mission critical applications.
* Administered Splunk internal environment through log file resizing, queue parameter changes, dispatch directory folders cleaning.
* Created reports, Dashboards, scheduled alerts and searches.
* Created Splunk Simple XML Dashboards with various visualizations like Pie / Bar/ Line/Area charts.
* Developed OS monitoring dashboards using Gauges to detect CPU Usage and Memory Usage.
* Strong background in a disciplined software development life cycle (SDLC).
* Excellent analytical and interpersonal skills and ability to learn new concepts and supported 24/7 on call in production and development environment.
* Creating Reports, Pivots, alerts, advance Splunk search and Visualization in Splunk enterprise.
* Skilled at accessing client needs, working in a group, suggesting ideas that enhance efficiency and maximize performance, implementing cutting-edge technology solutions and Training/Supporting end users.
* Have experience working in different environments and with the process flows in AGILE as well as Waterfall methodologies.
* Monitor the applications and server infrastructure for optimization, performance and Utilization metrics.

Environment: Splunk Enterprise Server 6.x, Universal Splunk Forwarder 6.x, RedHat Linux, Amazon Web Services (AWS), XML.

SECURITY ANALYST
Mar 2014 - Oct 2015 GlobalLogic Technologies

* Performed security penetration test on network systems using ISS software.
* Provided device monitoring, analysis and incident response to information security alerts and events which includes IDS/IPS, Firewalls, SIEM and AV management systems.
* Presentation on security product for customers.
* Performed software and hardware testing for system developments.
* Attended meetings with development team to discuss the previously submitted reports on the findings to ensure that the fixes are made to those applications.
* Performing manual/automated application security testing on the major changes carried out in the application.
* Monitoring and analyzing all security logs and applications data logs from NIDS and Application Firewall using SPLUNK.
* Identified issues on sessions management, Input validations, Logging, Exceptions, Cookie attributes, Encryption, Privilege escalations.
* Organized monthly reconciliation extracts with vendors.
* Network scanning using tools like NMap and Nessus and encryption testing using Wireshark.
* Experience in performing exploitation using different tools like NMAP AND Kali Linux.
* Conducted analysis using Kali Linux environment to effectively neutralize DOS, DDOS, and SQL Injection attacks.
* Worked with Senior Security Analysts to correct issues with current applications.
* Performed troubleshoot to identify software performance issues.
* Remotely manage client devices and correct problems
* Remediate account provisioning and identity issues related to failures in the provisioning systems
* Performed Penetration Testing (Support and fix).
* Deescalated and managed customer related escalations.
* Ensure all Service Management procedures are being followed and SLA's met.
* Experienced with Active Directory/Networking Administrative Support.
* Created and maintained Active Directory objects.
* Provided inbound tier 2 support for Microsoft suite, Windows XP, Active Directory, PC Hardware, printers, VPN access and custom applications.
* Designed various Excel formulas to perform multiple functions.
* Monitored user activity abnormalities.
* Assisted in training PC end users on security risk management.

NETWORK ENGINEER
Dec 2011 - Feb 2014 NELCO LTD

* Administer, troubleshoot and provide technical support for telecommunications, network (LAN/WAN) infrastructure, firewalls.
* Monitor network device system health, availability, and general functionality. Evaluate new hardware/software technologies for potential Credit Union use.
* Perform backups of device configurations and solving port security issues.
* Built a system for installing a Firewall Platform using vSphere ESXi. Linux based OS CentOS to was use so it could be assembled on a virtual machine to be able to support Multi-Server Environment.
* Decommissioned the old switch stack and replaced it with a new one after connecting it through the network. Built and configured an entire Switch Stack along with Printer Switch. Cabled the ports across with the switches.
* Redirecting the traffic through Layer 3 switch using WCCP to a specific server to optimize resource network usage and improve the response time.
* Track and document incidents that affect availability to the network and provide reporting information to management. Follow established administrative, tracking, and best practice procedures.
* Identify and resolve technical problems in a timely manner while determining and fixing the root cause of chronic problems.
* Maintaining operating system patch levels for telecommunications and network devices.
* Identify, track, and recommend new or emerging technology trends. Participate in maintaining network/system security and remediation efforts.
* Provide assistance with various project and support requirements. Document telecom billing and review bills for accuracy.
* Anticipating, recognizing and resolving various technical (hardware, software, application or operational) problems. Data/voice cabling structures.
* Support Video Conferencing systems (Polycomm Devices)
* Experience supporting Cisco VoIP and voice-mail systems including the Interactive Voice Response(IVR), Voice Response Units(VRU) and Exchange Voicemail integration.

Education

Master of Science in Computer Information Systems - Computer Information Systems
California University of Management and Sciences
Technology
Vignan's University